本文選題：傳感器網(wǎng)絡(luò) + WLAN-3G�。� 參考：《西安電子科技大學(xué)》2015年博士論文

【摘要】：智慧家庭中的終端設(shè)備通過(guò)網(wǎng)絡(luò)實(shí)現(xiàn)家庭內(nèi)部各種家用電子電器產(chǎn)品之間及其與外部設(shè)備的互聯(lián)互通,能夠便捷地實(shí)現(xiàn)互動(dòng)娛樂(lè)、信息服務(wù)與智能控制,為家庭成員提供更加豐富的服務(wù)。隨著網(wǎng)絡(luò)技術(shù)和信息技術(shù)的發(fā)展,承載了多種網(wǎng)絡(luò)和多類(lèi)業(yè)務(wù)的融合終端產(chǎn)品也越來(lái)越多。在各種網(wǎng)絡(luò)之間的信息交換,由于各網(wǎng)絡(luò)的目的、速率、覆蓋范圍、服務(wù)能力、應(yīng)用對(duì)象、運(yùn)營(yíng)管理、安全方案等多個(gè)方面常常不一致。這些終端在進(jìn)行互聯(lián)互通的時(shí)候,除了面臨原網(wǎng)絡(luò)的安全問(wèn)題還引入了網(wǎng)絡(luò)融合時(shí)的安全問(wèn)題。本論文的主要研究解決傳感網(wǎng)絡(luò)與互聯(lián)網(wǎng)進(jìn)行融合時(shí)的用戶認(rèn)證問(wèn)題,無(wú)線局域網(wǎng)與移動(dòng)互聯(lián)網(wǎng)的融合時(shí)的用戶認(rèn)證問(wèn)題,剖析了具有代表性的多網(wǎng)絡(luò)融合終端產(chǎn)品智能電視終端的安全問(wèn)題,并提出了相應(yīng)的解決方案。為了系統(tǒng)的分析和解決在智慧家庭中多網(wǎng)絡(luò)融合終端所面臨的安全問(wèn)題,研究對(duì)象選取了智慧家庭的三大核心網(wǎng)絡(luò)(傳感器網(wǎng)絡(luò)、移動(dòng)通信網(wǎng)、WLAN)及相應(yīng)的終端產(chǎn)品。本文中研究的主要內(nèi)容包括:傳感器網(wǎng)絡(luò)自身的安全問(wèn)題;傳感器網(wǎng)絡(luò)與互聯(lián)網(wǎng)在融合時(shí)的安全;移動(dòng)通信網(wǎng)與WLAN融合的安全問(wèn)題及終端在應(yīng)用中的安全問(wèn)題。其中傳感器網(wǎng)絡(luò)是智慧家庭中最核心的數(shù)據(jù)采集網(wǎng)絡(luò),傳感器網(wǎng)絡(luò)的應(yīng)用是智慧家庭的最重要特征,它的安全對(duì)于智慧家庭安全非常重要。傳感器網(wǎng)絡(luò)采集的數(shù)據(jù)需要同互聯(lián)網(wǎng)進(jìn)行交換處理,這就需要對(duì)他們?nèi)诤蠒r(shí)的安全問(wèn)題進(jìn)行研究。隨著智能終端的大量應(yīng)用,移動(dòng)通信網(wǎng)如何同WLAN進(jìn)行無(wú)縫、安全的融合也變得非常重要。主要的研究方法是通過(guò)分析研究國(guó)內(nèi)外已有的主流協(xié)議或方法,分析其原理、特點(diǎn)和優(yōu)劣勢(shì),在其基礎(chǔ)上進(jìn)行改進(jìn),并通過(guò)分析和仿真對(duì)改進(jìn)的協(xié)議和方法進(jìn)行驗(yàn)證。研究工作受到了國(guó)家自然科學(xué)基金-廣東聯(lián)合基金(U0835004):“數(shù)字家庭無(wú)線網(wǎng)絡(luò)體系結(jié)構(gòu)及兼容性理論與技術(shù)研究”;國(guó)家高技術(shù)研究發(fā)展計(jì)劃(863計(jì)劃):“新一代數(shù)字電視關(guān)鍵技術(shù)研究及驗(yàn)證(2012AA011706)”的資助。論文主要包括四個(gè)部分的內(nèi)容:第一部分的研究主要針對(duì)現(xiàn)有傳感器網(wǎng)絡(luò)的網(wǎng)絡(luò)體系結(jié)構(gòu)、主要威脅模型、常見(jiàn)的傳感器網(wǎng)絡(luò)訪問(wèn)控制方式進(jìn)行研究。研究了傳統(tǒng)的訪問(wèn)控制機(jī)制,分析了國(guó)內(nèi)外主流的訪問(wèn)控制方式的特點(diǎn),了解了其開(kāi)銷(xiāo)大,終端節(jié)點(diǎn)容易被捕獲、易受拒絕攻擊和信息重放的缺陷,同時(shí)為了增加用戶數(shù)量、訪問(wèn)能力的可擴(kuò)展性以及抵制用戶捕獲攻擊,研究了訪問(wèn)控制方式和用戶訪問(wèn)能力撤銷(xiāo)方式,相關(guān)機(jī)制在開(kāi)銷(xiāo)不變的情況下提高了相關(guān)的安全能力,具有更加豐富的應(yīng)用場(chǎng)景。第二部分研究主要針對(duì)傳感器網(wǎng)絡(luò)與互聯(lián)網(wǎng)融合的安全問(wèn)題。分析了他們?cè)谌诤蠒r(shí)的主要安全問(wèn)題,針對(duì)其中動(dòng)態(tài)用戶認(rèn)證協(xié)議的安全問(wèn)題進(jìn)行了深入研究,在分析國(guó)內(nèi)外主流的動(dòng)態(tài)用戶認(rèn)證協(xié)議的基礎(chǔ)上。設(shè)計(jì)了一種新的動(dòng)態(tài)用戶認(rèn)證協(xié)議,進(jìn)行了改進(jìn)。改進(jìn)的協(xié)議在保持協(xié)議輕量、高效特點(diǎn)的同時(shí),增強(qiáng)了防御偽裝網(wǎng)關(guān)重放攻擊,拒絕服務(wù)攻擊的能力,而且口令的更新更加方便。第三部分研究主要針對(duì)移動(dòng)通信網(wǎng)絡(luò)同WLAN融合中出現(xiàn)的問(wèn)題。針對(duì)該問(wèn)題,選取3G作為移動(dòng)通信的代表技術(shù)。對(duì)目前已有的融合方案:第三代合作伙伴計(jì)劃(3GPP)組織針對(duì)移動(dòng)通信與WLAN網(wǎng)絡(luò)融合提出的互聯(lián)方案和三種互聯(lián)結(jié)構(gòu)及可擴(kuò)展認(rèn)證和秘鑰協(xié)商協(xié)議(EAP-AKA)方案進(jìn)行分析。針對(duì)EAP-AKA協(xié)議存在的問(wèn)題,引入了我國(guó)自主知識(shí)產(chǎn)權(quán)WAPI-移動(dòng)通信網(wǎng)的互聯(lián)結(jié)構(gòu)模型,并在其基礎(chǔ)上設(shè)計(jì)了認(rèn)證協(xié)議EAP-WAPI。針對(duì)其統(tǒng)一接入認(rèn)證問(wèn)題,文中對(duì)該方案進(jìn)行改進(jìn)。分析和仿真結(jié)果表明,相比于原有的WAPI認(rèn)證協(xié)議WAPI-XG1,EAP-WAPI協(xié)議改進(jìn)了認(rèn)證交互過(guò)程,提高了執(zhí)行效率。第四部分研究主要針對(duì)傳統(tǒng)家電設(shè)備日益網(wǎng)絡(luò)、智能化、融合化所面臨的安全問(wèn)題進(jìn)行分析,選取了家庭中研究較少,比較有代表性的產(chǎn)品--智能電視進(jìn)行了研究。指出了智能電視所面臨的安全威脅和安全系統(tǒng)架構(gòu)。并設(shè)計(jì)了一套身份認(rèn)證管理系統(tǒng)的架構(gòu)和流程。智能電視安全問(wèn)題和威脅分析的部分內(nèi)容被吸納進(jìn)我國(guó)智能電視行業(yè)標(biāo)準(zhǔn)中,安全系統(tǒng)的設(shè)計(jì)也為標(biāo)準(zhǔn)的研制提供了有效的素材。同時(shí)對(duì)研究?jī)?nèi)容轉(zhuǎn)化為標(biāo)準(zhǔn)也進(jìn)行了有益的探索和嘗試。
[Abstract]:The terminal equipment in the intelligent family realizes intercommunication between various household electronic and electrical products within the family and its external equipment through the network. It can conveniently realize interactive entertainment, information service and intelligent control, and provide more rich services for family members. With the development of network and information technology, it carries a variety of networks. There are more and more terminal products of collaterals and multi class services. The exchange of information between various networks is often inconsistent with the goals, rates, coverage, service capabilities, application objects, operation management, and security schemes of each network. These terminals are confronted with the security problems of the original network when they are interconnected. The main research of this paper is to solve the user authentication problem of the fusion of the sensor network and the Internet, the problem of user authentication when the wireless LAN and the mobile Internet are fused, and analyze the security problems of the representative multi network fusion terminal product intelligent TV terminal. In order to systematically analyze and solve the security problems faced by the multi network fusion terminal in the intelligent family, the research object selected three core networks of the intelligent family (sensor network, mobile communication network, WLAN) and the corresponding terminal products. The main contents of this paper include: the sensor network itself Security issues; the security of the fusion of sensor networks and the Internet, the security problems of the fusion of mobile communication networks and the WLAN and the security of the terminal in the application. The sensor network is the most important data collection network in the intelligent family, and the application of the sensor network is the most important feature of the Hui's house, and its security is to the intelligent Hui's home The security of the network is very important. The data collected by the sensor network needs to be exchanged with the Internet. This needs to study the security problems of their fusion. With the large application of the intelligent terminal, it is not very important how the mobile communication network can be seamless and secure with the WLAN. The main research method is through the analysis and research. Study the principles, characteristics and advantages and disadvantages of the existing mainstream protocols and methods at home and abroad. On the basis of their improvement, the improved protocols and methods are verified by analysis and simulation. The research is subject to the National Natural Science Foundation of Guangdong (U0835004): "digital home wireless network architecture and compatibility theory." Research and technology research "; national high technology research and development plan (863 plan):" the new generation of digital television key technology research and verification (2012AA011706) ". The paper mainly includes four parts: the first part of the research is mainly aimed at the network architecture of the existing sensor networks, the main threat models, the common sensors The traditional access control mode is studied. The traditional access control mechanism is studied, and the characteristics of the mainstream access control methods at home and abroad are analyzed. It is understood that its overhead is large, the terminal nodes are easily captured, the denial of attack and the replay of information are easy to be captured, and the scalability of the user's number, the accessibility of the access and the resistance to the users are also discussed. Capture attack, study access control mode and user access ability revocation mode, the related mechanism improves the relevant security ability and has a more rich application scene in the case of constant overhead. The second part mainly focuses on the security problem of the fusion of sensor networks and the Internet. The main security of their fusion is analyzed. On the basis of analyzing the mainstream dynamic user authentication protocol, a new dynamic user authentication protocol is designed and improved. The improved protocol enhances the replay of the defense camouflage gateway while maintaining the lightweight and high efficiency of the protocol. Attack, the ability to reject the service attack, and the update of the password is more convenient. The third part of the study mainly focuses on the problems arising from the fusion of mobile communication network and WLAN. In view of this problem, 3G is selected as the representative technology of mobile communication. The existing fusion scheme: the third generation partnership plan (3GPP) organization for mobile communication and W The interconnection scheme proposed by LAN network and the three interconnection structures and the extensible authentication and secret key negotiation protocol (EAP-AKA) are analyzed. In view of the problems existing in the EAP-AKA protocol, the interconnection structure model of the autonomous intellectual property WAPI- mobile communication network is introduced, and the authentication protocol EAP-WAPI. is designed on the basis of its unification. The analysis and simulation results show that, compared to the original WAPI authentication protocol WAPI-XG1, the EAP-WAPI protocol improves the authentication interaction process and improves the execution efficiency. The fourth part of the study mainly focuses on the security problems faced by the increasingly network, intelligence and fusion of traditional household appliances. Analysis, select the less research and more representative products in the family, smart TV. The security threat and security system architecture of smart TV are pointed out. The architecture and process of a set of identity authentication management system are designed. Some contents of smart TV security and threat analysis are absorbed into our country's intelligence. In the TV industry standard, the design of the security system also provides effective material for the development of standard. Meanwhile, it also makes useful exploration and try on the transformation of the research content into the standard.
【學(xué)位授予單位】：西安電子科技大學(xué)
【學(xué)位級(jí)別】：博士
【學(xué)位授予年份】：2015
【分類(lèi)號(hào)】：TP212;TP393.08

【相似文獻(xiàn)】

相關(guān)期刊論文 前10條

1 鄒婷;下一代通信“網(wǎng)絡(luò)融合與匯聚國(guó)際論壇暨峰會(huì)”[J];世界電信;2004年06期

2 嚴(yán)益強(qiáng);固網(wǎng)與3G網(wǎng)絡(luò)融合規(guī)劃研究[J];通信世界;2005年13期

3 帥o，

本文編號(hào)：2094432